Cyber Security Administrator

Description

Cyber Security Administrator

Candidates will be Responsible for ensuring configuration and run of all Cybersecurity solutions/services, ensuring their maintenance and fixing vulnerabilities as well as analysing requests and proceeding to implementation or managing changes.

Responsibilities

• Implement or control worldwide implementation and changes of all cybersecurity systems including firewalls, Cybersecurity SaaS solutions, IPS and anti-malware, proxies, remote access, VPNs, etc. either on-prem or in the cloud, in compliance with defined policies, procedures, and processes.
• Develop processes and procedures with necessary, efficient and pragmatic workflows to streamline cybersecurity operations.
• Validate the implementation of cybersecurity solutions suggested by the Project team, ensuring that all operational documentation is available, according to Handover process.
• Define and update which critical operations require to be executed in a 4-eye principle.
• Define and enforce roll-back procedures either global or specific to each change in order to execute them in a fail-safe way, to protect our business continuity.
• Still, in case of failure to apply a change, lead appropriate investigation to understand the root-cause of such failure, and how to avoid its reoccurrence during future similar operations.
• Escalate technical issues to all necessary L3 contacts, for instance within Cybersecurity Advisory & Projects team.
• Manage on-call duty responsibilities to support off hours and weekend operations as needed (shared mailboxes, external accesses, monitoring alerts/warnings handover).
• Communicate planned / emergency changes to all other necessary departments (including Applications and Infrastructure teams), along with all potential impacts.
• Develop trust-based relationships with requesters to fully understand their needs and implement necessary changes, while ensuring proper cybersecurity risk management and seeking for consensus.
• Ensure compliance with information security standards, policies and procedures. Implement industry best practices and solutions and communicate appropriately on it.

Suitable candidates should have experience in at least some of the following areas;

Provide hands on technical expertise in Cybersecurity Operations - Checkpoint Firewall, AlgoSec (Firewall Management), Cybereason (EDR), Cisco Ironport (Mail security), Menlo (Proxy), Symantec (DLP), Boldon James (Classification), Azure Cloud, CyberArk (PAM), Rapid7 (Vunerability Management), Cortex XSOAR (SOAR), Elastic SIEM, ServiceNow (Service Desk), O365 Suite, MS Active Directory.